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Abstract —We consider a class of malicious attacks against 
remote state estimation. A sensor with limited resources adopts an 
acknowledgement (ACK)-based online power schedule to Improve 
the remote state estimation performance. A malicious attacker 
can modify the ACKs from the remote estimator and convey fake 
information to the sensor. When the capability of the attacker 
is limited, we propose an attack strategy for the attacker and 
analyze the corresponding effect on the estimation performance. 
The possible responses of the sensor are studied and a condition 
for the sensor to discard ACKs and switch from online schedule 
to offline schedule is provided. 

Index Terms —Cyber-physical Systems, Security, Fake-ACK 
Attack, Remote State Estimation. 

I. Introduction 

Cyber-physical systems (CPS) have been a hot topic among 
both academic and industrial communities in the past few 
years. A wide application spectrum of CPS can be found in 
areas such as smart grid, intelligent transportation and environ¬ 
ment monitoring |[Tj with the integration of sensing, control, 
communication and computation. In most CPS infrastructures, 
wireless sensors are key components with advantages such 
as low cost, easy installation, self-power Q, when compared 
with traditional wired sensors. Therefore, wireless sensors 
have been increasingly equipped in CPS to replace wired 
sensors. The new issues due to their special characteristics 
have attracted much attention in recent years. 

The hrst issue is how to allocate the energy of the sensor 
efficiently. Since most wireless sensors use on-board batteries 
which are difficult to replace, and are typically expected to 
work for several years without battery replacement, energy 
conservation is critical 0-0. In 1^, the authors consider 
the sensor scheduling problem of whether it should send 
its data to a remote estimator or not due to the limited 
available communication energy. The optimal offline sensor 
schedule is derived, where the term “offline” means that the 
sensor designs its strategy before the process starting, i.e., 
independent of the state of the process. In Q-0, the authors 
extend the result in 0 and propose a so-called “online” sensor 
power schedules by utilizing the real-time information of the 
process. One typical category of online information is the ACK 
from the remote estimator, indicating whether the data packet 
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from the sensor arrives successfully or not. The ACK-based 
online power schedule is proved to improve the estimation 
performance signihcantly 0 compared to the offline schedule 
which only requires sending a 1-bit ACK packet. 




Fig. 1. Architecture of Cyber-Physical Systems. 


However, as the communication is through a wireless 
channel, these sensors are more vulnerable to cyber security 
threats. In some safety-critical infrastructures, the wide use 
of CPS enlarges the risks and severities of such attacks. 
For example, as the largest and most complex CPS in the 
future, any severe attack on smart grid may have signihcant 
impacts on national economy and security or even loss of 
human life pO) . Therefore, the security issue is of fundamental 
importance to ensure the safe operation of CPS. There are 
two possible types of attacks that are commonly investigated 
in the literature: deception (integrity) attacks and denial-of- 
service (DoS) attacks O’ corresponding to the two traditional 
security goals integrity and availability. The integrity attacks 
on CPS focus on the integrity of data by modifying the data 
packet O’O’ while the DoS attacks block the exchange of 
information including sensor measurements or control inputs 
between each part of CPS | [T4) , p7j . In practice, the integrity 
attacks studied in O’ P3[, |16| often require comprehensive 
information about the system and modihcations of the data. 
Such information is not needed in DoS attacks. In this work, 
we will consider both types of attacks. 

Though the online power schedule in 0 improves the 
estimation performance, the simple structure of the ACK 
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packet makes it a more reachable (and likely) alternative for 
the adversary, under both integrity attacks and DoS attacks. 
Elucidating what is the possible attack patterns are and how 
they will affect the estimation performance are important to 
help us improve the design of CPS. This motivates us to 
investigate such potential class of malicious attacks against 
ACK-based remote state estimation. 

The remainder of the work is organized as follows. Section 
II presents the system framework and states the main problem 
of interest. Section III provides some preliminaries about the 
optimal offline schedule and an online schedule. The analysis 
of our proposed fake-ACK attack pattern is given in Section 
IV. Numerical examples and simulations are demonstrated in 
Section V. Section VI provides some concluding remarks. 

Notations'. Z denotes the set of all integers and N the 
positive integers. K is the set of real numbers. K” is the 
n-dimensional Euclidean space. S" (and S"_|_) is the set of 
n by n positive semi-dehnite matrices (and positive dehnite 
matrices). When AT S S" (and S"_|_), we write X 0 (and 
X > 0) and X ^ Y if X — Y sS". The curled inequality 
symbols ^ and ^ (and their strict forms and X) are used 
to denote generalized componentwise inequalities between 
vectors: for vectors a = [ai, 02 ,..., a„]', b = [ 61 , 62 , ^n]^ 

we write a ^ b if ^ bi, for i = 1,2, 1 denotes 

vector with all entries one. Tr(-) is the trace of a matrix. 
The superscript ' stands for transposition. Eor functions g, h 
with appropriate domains, g o h{x) stands for the function 
composition g(^h{x)), and h^{x) = h{JY ^(cc)), where n G N 
and with h'^{x) = x. 6ij is the Dirac delta function, i.e., 6ij 
equals to 1 when i = j, and 0 otherwise. The notation P[-] 
refers to probability and £[•] to expectation. 

II. Problem Setup 

A. System Model 

Our interest lies in the security of a remote state estimation 
as depicted in Eig. Here we consider a general discrete-time 
linear time-invariant (LTI) process of the form: 

Xk+i = Axk + Wk, ( 1 ) 

2/fc = Cxk+Vk, (2) 

where k G N, Xk G is the process state vector at 

time k, yk G is the measurement taken by the sensor, 
Wk G and Vk G M"" are zero-mean i.i.d. Gaussian noises 
with E[uifciu'] = SkjQ (Q ^ 0 ), E[ufeUj'] = SkjN (R > 0 ), 
E[i(;fcUj'] = 0 Vj, k G N. The initial state xq is a zero- 
mean Gaussian random vector uncorrelated with Wk and Vk 
with covariance Hq ^ 0. The pair {A, C) is assumed to be 
observable and {A,Q^/^) is controllable. 

We consider the so-called “smart sensor” as described 
in 03^ which hrst locally estimates the state Xk based on 
all the measurements it has collected up to time k and then 
transmits its local estimate to the remote estimator. 

Denote x^ and as the sensor’s local minimum mean- 
squared error (MMSE) estimate of the state Xk and the 
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Fig. 2. System Architecture. 


corresponding error covariance: 

xl = E[xk\yi,y2,-,yk], (3) 

H = mxk-xl){xk-xiy\yi,y2,-,yk], ( 4 ) 

which can be calculated by a standard Kalman filter. 

As the estimation error covariance of the Kalman hlter 
converges to a unique value from any initial condition (fTS)), 
without loss of generality, we assume that the Kalman hlter at 
the sensor side has entered the steady state and simplify our 
subsequent discussion by setting: 

=P, k^l, (5) 

where P is the steady-state error covariance. Eor notational 

ease, we dehne the Lyapunov and Riccati operators h,g : 
S” ^ Sy as: 

h{X) = AX A' + Q, 

g{X) = X - XC'[CXC'+ R]-^CX. 

Then P is given by the unique positive semi-dehnite solution 
of p o h{X) — X (see p^). 

The error covariance P has the following property: 

Lemma 2.1: (Lemma 2.3 in flV) ) Eor 0 ^ ^ t 2 , the 

following inequality holds: 

h*^(P) ^h^^(P). (6) 

In addition, if ti < t 2 , then 

Tr (P)) < Tr (P)) . (7) 

After obtaining the sensor will transmit it as a data 
packet to the remote estimator. Due to fading and interference, 
random data drops will occur. As modelled in we 

assume that the sensor has two transmission power levels: 
when using a higher energy A, the packet will always arrive 
to the remote estimator; when using a lower energy S, the 
successful arrival rate is A G (0,1). To simplify the following 
discussion, we denote the sensor power schedule as: 

0 = {71,12, ■■■,'lk,-}, ( 8 ) 

where 7 ^ = 1 or 0 represents that the sensor chooses energy 
A or S, respectively, at time step k. 
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B. Remote State Estimation 

The transmission of between the sensor and the re¬ 
mote estimator can be characterized by a binary random 
process {A^}, fc e N: 


Afc 


1 , tf xl. arrives at time k, 

0 , otherwise (regarded as dropout). 


Denote Xk and Pk as the remote estimator’s own MMSE state 
estimate and the corresponding error covariance based on all 
the sensor data packets received up to time step k. From (20| 
and the remote state estimate Xk obeys the recursion: 


f xl, if Xk = 1 , 
\ Axk-i, if Xk = 0 . 


( 9 ) 


The corresponding state estimation error covariance Pk satis¬ 
fies: 


r p, if Afc = 1, 

\ h{Pk-i), if Afc = 0 . 


( 10 ) 


Intuitively, higher transmission power leads to better es¬ 
timation performance. However, in practice, the sensor has 
a limited energy budget, which motivates us to consider the 
following optimization problem: 

Problem 2.2: 

1 ^ 

min J(6i) =limsup —y^Tr(E[Pfc]), 

" ^ fc=i 

1 ^ 

s.t. $(6») = limsup- VE[ 7 fcA -f (1 - 7fc)(5] ^ 4', 

T^oo r — 


where T' is the average energy constraint for the sensor. 

Remark 2.3: We assume that A, 5, and T' are all positive 
rational numbers satisfying (5 < T' < A. □ 


III. Preliminaries 

In this section, we will revise some preliminary results about 
the optimal offline schedule and an ACK-based online power 
schedule when there is no attacker. 


A. Optimal Offline Schedule 

When the sensor designs its power schedule without utiliz¬ 
ing any online information, the optimal solution is provided 
by the following theorem: 

Theorem 3.1 (Optimal Offline Schedule Proposed in 
Given the average energy constraint 'k, suppose that p and 
q are two co-prime integers satisfying - = xEI- Then the 


optimal offline power schedule 9*^ to Problem 2.2 
period q can be constructed in the following form: 


over a 


(1 0^ ) • • • (1 0^ ) (1 o_^) • • • (1 o_^-_g) 

sq + I times so + ltimes sq times sotimes 

■v* “V' 

n times m times 

where 1 and 0 denotes the designed value for 7fc in (| 8 ]l, m = 
q — p{so + 1), n = p{so + 2) — q, and sq is the largest integer 
such that So ^ I — 1. □ 


Under the optimal offline schedule we have the fol¬ 
lowing closed-form results about the corresponding energy 
consumption and estimation performance ||^. 

Proposition 3.2: When 9*^^ is used, the average energy cost 
is given by 


^ (m -f n)A -f (msQ -f nsp -f m)5 ^ ^ 
mso + nso + 2m + n ’ 

and the trace of the expected average state estimation error 
covariance is given by: 


TTI^Sq + 2 ) + TiI^Sq + 1 ) 

Tr|TO[l -I- A(so + 1)]P -I- n[l -I- Aso)]P 


sq + I 


+ mJ 2 [1 + + 1 - 0] (1 - xyh \ p ) 

so _ 

+ n^ [l + A(so-i)](l-A)*/i*(P)|. 


i=l 


□ 


B. Online Power Schedule 

The offline power schedules are designed before the system 
is running without using the realtime measurement or state 
information. In 0 , the author showed that the utilization of 
the online information can improve the system performance 
while require less energy consumption. To further improve 
the estimation performance, an online power schedule based 
on the ACKs from the remote estimator was proposed in Q 
as follows: the remote estimator generates 1-bit ACKs (= Afc) 
to indicate whether the data packet arrives successfully or not 
and an event-detector at the remote estimator’s side collects 
and stores the ACKs in an L-bit memory. Without loss of 
generality, assume the sensor uses A at the first time step. The 
memory is set to 11 ,..., 11 initially and the detector randomly 
chooses to activate 2 :o-bit memory (zq < L) with probability 
p, or (zq + l)-bit memory otherwise. At every time step, the 
memory shifts all bits one bit to the MSB direction with the 
existing MSB being deleted and the incoming ACK stored in 
the LSB. When the memory becomes 00, ...,00, the detector 
sends a flag-ACK to inform the sensor to use high power in 
the following time step. In the meanwhile, the memory is set 
to 11,..., 11 again (see Fig. |^. 

By properly designing the parameter zq and p, the average 
energy consumption can meet the constraint in Problem |2.2| 
and the corresponding estimation performance is given by the 
following theorem: 

Theorem 3.3 (Theorem 4.5 in l^): Under the proposed 
online power schedule 0 on, the trace of the average expected 
estimation error covariance is given by: 

xyo+i - ^(1 xyo+2■ 

Tr 

2=0 


^(1 - xyhyp) + ffli - A)^»+i/i^“+i(P) 
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Fig. 3. System Architecture under Online Sensor Schedule. 


□ 

Compared to the optimal offline schedule, the proposed 
online schedule 0on has a better estimation performance under 
the same energy constraint, which is summarized in the 
following theorem Q: 

Theorem 3.4 (Theorem 5.3 in l^): Under the same energy 
constraint as in Problem [2.2[ the proposed online schedule 0on 
has a better estimation performance than the optimal offline 
schedule 0*^ provided in Theorem |3.1| i.e.. 


IV. Fake-acknowledgement Attack Against 
Remote Estimation 

As stated before, the ACK-based online power schedule can 
improve the estimation performance significantly compared to 
the offline schedule. However, the simple structure of the 1- 
bit flag-ACK packet makes it a more reachable (and likely) 
alternative for the adversary, under both integrity attacks and 
DoS attacks. In this section, we propose a possible attack 
pattern for the attacker and investigate the corresponding effect 
on the estimation performance. 

A. Proposed Fake-ACK Attack Pattern 

Based on the communication protocol used by the event- 
detector, the attacker may adopt different types of attacks: 
when the flag-ACK is sent at every time step with value 1 
or 0 (Type A), the attacker modifies the bit contained in the 
packet to launch the attack, i.e., the integrity attack; when 
the flag-ACK is sent only when the event happens (Type 
B), the attacker can simply adopt DoS attack to prevent 
the transmission of the packet. No matter what types of the 
communication protocols and attacks are used, the consequent 
results are the same: the time steps which would use energy 
A now use 5 instead under the attack. Therefore, without loss 
of generality, we will assume that the event-detector adopts 
protocol Type B and the attacker launches DoS attack in the 
following discussion (the analysis of the other case is almost 
the same). 

Assume that the attacker also has an energy constraint 
and cannot launch attack at every time step. Otherwise, it 
is straightforward to see that the attacker will attack all the 


flag-ACKs with value 1 to prevent the transmission. Let the 
proportion of the flag-ACK packets that can be prevented by 
the attacker among all the flag-ACK packets be constrained 
to be /3 G (0,1) and f,r(f > r) are two co-prime integers 
satisfying | = /3. In |15|, the optimal DoS attack pattern 
is proved to be launching the attack consecutively so that 
the effect on the estimation performance is maximized. This 
motivates us to consider the specific attack pattern of interest 
described as follows: 


1 ) the attacker follows a periodic pattern; 

2) the attacker maintains a counter and launches DoS 
attacks to prevent the transmission of the first r coming 
flag-ACKs, and leave the rest t — r coming flag-ACK 
with value 1 unchanged; 

3) after every t coming flag-ACKs, the counter is set to 0 
again. 

This is summarized in Algorithm [T] 


Algorithm 1 Attacking Pattern for The Attacker 
1 : Process begins; 

2 : counter = 0; 

3: while 1 do 

4: if a flag-ACK packet is sent then 

5: if counter ^ r then 

6 : block the transmission of the flag-ACK packet; 

7: else 

8 : do not block; 

9: end if 

10 : counter = counter + 1; 

11 : end if 

12 : if counter == t then 

13: counter = 0; 

14: end if 

15: end while 


Example 4.1: We use a simple example to illustrate how 
this attack pattern works. Assume that zq = 2, /? = | (thus 
r = 2 and t = 3), one possible realization and comparison 
between the online schedule 0on and the one under attack 9oa 
are shown in Fig. (the long arrows represent the arrival 
packets while the short one is for the dropped packets; the 
number between arrows is the value of the counter). In the 
realization of 0on without attack, the second and the third flag- 
ACK are sent due to two (zq = 2) consecutive packet losses. 
When there is an attacker following the pattern in Algorithm[2 
it will attack the first two (r = 2) flag-ACKs, let the third one 
transmitted, and reset the counter for a new period. 

B. Performance Analysis 

Denote the estimation performance of 9on under the pro¬ 
posed fake-ACK attack as J(0on)- We will investigate the 
analytical form of J(0on) in the following part. 

Note that due to the recursion of the dynamics in ( [TOl i, the 
covariance can only take value in the infinitely countable 
set {P,/i(P),...}. Denote rj, G Z as the holding 
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time since the most recent time when the remote estimator 
successfully received the data from sensor; 

Tk — k — max {t : Xt = 1 }. ( 11 ) 

Then we have 

p P, _ if Afc = 1, 

ifAfc = 0 . 

Dehne the value of the attacker’s counter at time step k as 
(Tfc S { 0 , 1 , 2 ,f — 1 } and the state of the process at time 
step k as: 


As the strategy of the attacker guarantees that the flag-ACK 
will be sent to the sensor when the value of the counter is 
larger than r, the covariance Pk will be bounded and only 
takes value in a finite set. Therefore, based on the recursion 
in it is easy to verify that the process {Sk} constitutes 
a finite state stationary Markov chain. 

Remark 4.2: Note that the design of the parameter /r in the 
online sensor schedule Ooa is to tune the activated memory 
length between zq and zq + 1 in the event-detector to satisfy 
the energy constraint. When the energy constraint is in some 
simple form, e.g., A or A, a fixed length activated memory 
with Zq is sufficient. Without loss of generality, we assume 
that the event-detector adopts a fixed activated memory with 
length Zq to facilitate the discussion and simplify the notation 
below. We will later show that our results also apply to the 
general case with variant length. □ 

According to the mechanism of the online sensor schedule 
9on and the attack strategy, only takes values in the 
set {0,1,2,..., + 1)} when ^ r and in the set 

{0,1, 2,..., zo} when r < ak < t. Then the state set can be 


constructed as; 

5^{(0,0),(l,0),..,(zo-l,0),(zo,0), 

( 0 ,l),(l,l),...,( 2 zo-l,l),( 2 zo,l), 

(0, r), ( 1 , r),..., (zo(r -f 1) - 1 , r), {zo{r + 1), r), 
(0,r-f 1), (l,r -f 1),.., (zo - 1), (zo,r -f 1), 

(0,r-f 2),(l,r-f 2),..,(zo - 1, r-f 2), (zq, r-f 2), 


(0,t- l),..,(2:o - l,f- l),(zo,f- !)}• 

The total number of states can be calculated as: 

r 

|5| = ^ [zo(z -I- 1) -I- l] -I- [(f - 1) - (r -I- 1) -I- l] (zo + 1) 

i =0 

= + 1)^0 + + !)■ 

It is convenient to label each state Ci in 5 in a sequential 
order from i = 1 to |5|. Then we can define the state transition 
probability matrix as: 


where 


Ps = {Tijlisixish 

Tij = P[S'fe+i = €j\Sk = ti]. 


Based on the mechanism of the online sensor schedule O^n 
and the attack strategy, we can derive the transition probability 
from Sk+i = (rfc+i,(Tfc) to Sk = (rfc,(Tfc) as follows: 

1 ) when Tk mod zg ^ 0 or = 0 , the event detector 
will not send the flag-ACK (and no attack as a consequence). 
Thus; 

{ A, if (Tfe+i, cTfc+i) = (0, ak), 

1-A, if (Tfe+i,crfc+i) = (Tfe-f l,crfe), 

0 , otherwise; 

2 ) when Tk mod zq = 0 , 7 A 0 and ak < r, the memory 
satisfies the triggering condition, the flag-ACK will be sent 
and the attack will be launched with the counter increasing by 
1. Thus; 


i A, if (rfc+i, cTfe+i) = (0, ak + 1), 
1-A, if (rfc+i,crfe+i) = (Tfe-f l,(Tfc-f 1), 
0 , otherwise; 

3) when Tk mod zg = 0, ^ 0 and r ^ ak < t — 1, the 

memory satisfies the triggering condition, the flag-ACK will 
be sent without being attacked and the counter increasing by 
1. Thus: 


P[^fc+i|5fe] 


1 , if (rfe+i,crfc+i) = (OjCTfe + 1 ), 
0 , otherwise; 


4) when Tk mod zg = 0, Tfc 7 A 0 and ak = t — 1, the 
memory satisfies the triggering condition, the flag-ACK will 
be sent without being attacked and the counter is reset to 0 . 
Thus; 


»[5fe+i|5fc] = 


1 , if (rfc+i,crfc+i) = ( 0 , 0 ), 

0 , otherwise. 
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Based on the above discussion, we can obtain the expression 
of the transition matrix Ts- Due to space limitation, we provide 
a simple example of Ts when zg = 2, r = 1 and f = 3 
(therefore |5| = 11 ) in ([T^. 

Based on the well-established ergodic Markov chain the¬ 


ory 1221 , {Sk} has a stationary probability distribution of 
states, which is denoted as: 


n = 


P[ei],P[e 2 ],...,P[e| 5 |] 


When {Sk} enters the steady state, we have 


TsU = n, 

Ell'in(*) = i, 


(13) 


where n(i) is the i-th element of If. 

By solving ( [T 3 | l, we can obtain the stationary distribution 
of state, denoted as 11*. Then we can calculate the estimation 
performance of 0on under the proposed fake-ACK attack as 
follows: 


Combining ( [l4| ) and ( [T5| ), we have: 

J(0on) = J{0on) min ^ JKs) < J{ln) max- 

As a consequence, when the capability of the attacker is 
limited, keeping the online schedule will still guarantee a 
better performance than the offline schedule 9*g. Otherwise, 
when the attacker has sufficient energy budget, the estimation 
performance under the online sensor schedule 9on, J( 0 on), will 
be even worse than the offline schedule 0*ff. In such case, not 
using ACK is preferable to using fake ACK and the reasonable 
choice for the sensor is to adopt the offline schedule rather than 
keeping the online schedule. Furthermore, as the performance 
metric J(0on) is growing with the energy budget /3, there exists 
a threshold value /3 such that (as later shown in Fig. |^: 

J{^on)p^'P = 

Hence, in practice, based on the information about the at¬ 
tacker’s capability, the sensor can choose different types of 
schedules to obtain a better performance, i.e.. 


1 , 

J (^on) = lim sup V' Tr (E[Pfe]) 

^ k=i 

= lim sup Tr (E[Pfe]) 

k—>oo 

= ^n*(z)Tr(E[P,(e,)]). 

i=l 

C. Discussion 

To analyze the effect of the proposed attacking pattern on 
9on, we first consider two extreme cases. 

When the energy constraint for the attacker is /3 = 1, the 
attacker can block the transmissions of all the flag-ACKs, 
resulting in the sensor using the low power 5 within the entire 
time-horizon. The corresponding estimation performance can 
be calculated as: 


6 >on, when P < (3, 

6 »*jj, when /3 > 

where /3 can be calculated numerically. How to obtain the 
value of P analytically is an interesting problem which will 
be considered in our future work. 

Remark 4.3: Note that the sensor can detect the existence of 
the attacker by checking the arrival rate of flag-ACKs based on 
the theoretical arrival rate provided in ||^. The observation will 
enable the sensor to estimate the capability of the attacker. On 
the other hand, when the sensor is aware of the existence of the 
attacker, the attacker will also need to re-design his strategy to 
avoid being detected, which will result in a dynamic decision¬ 
making process between both sides. We will investigate this 
problem under a game-theoretic framework in the future. □ 

V. Simulation 




= lim sup V Tr (E[Pk]) 
= lim sup Tr (E[Pfe]) 


k—^oo 
+ 00 


= > A(l-A)*Tr(h“(P)). 


i=0 


Note that the necessary and sufficient condition for the stability 
of the above case is simply given by p{A)(l — A) < 1, where 
p{A) is the maximum eigenvalue of A. Since, as proved in |201 
and 0 , more energy budget is always beneficial, we have: 


T(0on)max — (n=0) ^ 


( 14 ) 


where n is the number of high energy 5 that can be used 
within each period of J{9*^) defined in Theorem 


3.1 


One the other hand, when /3 = 0, the attacker cannot block 
any flag-ACK and the online sensor schedule will operate 
normally. Therefore, we have: 


J (^on)min — J{9 

O 


(15) 


In this section, we provide numerical examples to illustrate 
our results in different situations. 

Define 

k 

^ i=l 

as the empirical approximation (via 100000 Monte Carlo 
simulations) of J{9) at every time instant k. 

Consider a scalar system with parameters A = 1.2, C = 0.7, 
R = Q — 0.8, A = 0.5. Suppose that the energy constraint 
for the sensor is given by T* = -f |i5. It is easy to verify 
that the optimal offline schedule is given in a periodic form of 
{1000000,1000000,...} with performance J{9*fP = 2.0953. 
The parameter for the online schedule is zg = 2 with 
performance J{9on) = 1.6399. As shown in Fig. when the 
energy constraint for the attacker is /? = |, the estimation 
performance J(0on) is better than the performance using the 
offline schedule 9*g (thus the sensor may still choose 0on)- 
However, when the energy budget for the attacker is further 
increased, e.g., /3 = |, J(0on) is worse even than the offline 
0 *jj (thus the sensor may switch from the online schedule to the 
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Ts = 


AAA 
1 - A 0 0 

0 1 - A 0 

0 0 0 

0 0 0 

0 0 0 

0 0 1 - A 

0 0 0 

0 0 0 

0 0 0 

0 0 0 


0 00000 01 

0 00000 00 

0 00000 00 

A AOAOO 00 

1-A 00000 00 

0 1-A 0000 00 

0 00000 00 

0 00 1-A 00 00 

0 OlOlA AO 

0 0000 1-A 0 0 

0 00000 1-A 0 


( 12 ) 


offline one to obtain better estimation performance). In Fig. 
the comparison of J{9on) as a function of (3 is provided. As 
we can see, the approximate value of /3 is about 0.28. 



Fig. 5. Comparison between J(0on) and J(0on)- 



P 

Fig. 6. Comparison of J(f?on) under different /3. 


VI. Conclusion 

In this work, a potential class of malicious attacks against 
remote state estimation was studied. We proposed a strategy 
for the attacker which can modify the flag-ACKs from the 
remote estimator and convey fake information to the sensor. 
The corresponding effect on the estimation performance is 
analyzed based on well-established Markov chain theory. The 
condition for the sensor to use an online schedule instead of 
an offline schedule is provided. Simulations were provided 
to illustrate our results. Future works include obtaining the 
threshold value of f3 analytically, considering other types of 
fake-ACK attacks and extending the problem into a game- 
theoretic framework where the attacker need to design their 
pattern without being detected. 
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